CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2019-18994

Due to a lack of file length check, the HMIStudio component of ABB PB610 Panel Builder 600 versions 2.8.0.424 and earlier crashes when trying to load an empty *.JPR application file. An attacker with access to the file system might be able to cause application malfunction such as denial of service.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 52.8%

CVSS Severity

CVSS v3 Score 3.9

CVSS v2 Score 3.5

References

http://search.abb.com/library/Download.aspx?DocumentID=3ADR010466&LanguageCode=en&DocumentPartId=&Action=Launch
http://search.abb.com/library/Download.aspx?DocumentID=3ADR010466&LanguageCode=en&DocumentPartId=&Action=Launch

Products affected by CVE-2019-18994

Abb » Pb610 Panel Builder 600 » Version: N/A

cpe:2.3:a:abb:pb610_panel_builder_600:-
Abb » Pb610 Panel Builder 600 » Version: 1.90.0.975

cpe:2.3:a:abb:pb610_panel_builder_600:1.90.0.975
Abb » Pb610 Panel Builder 600 » Version: 2.8.0.424

cpe:2.3:a:abb:pb610_panel_builder_600:2.8.0.424

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-18994

Products

Pricing

Contact Us